(OpenBSD Issues Fix) OpenSSL RSA Signatures Can Be Forged
|
|
SecurityTracker Alert ID: 1016820 |
|
SecurityTracker URL: http://securitytracker.com/id/1016820
|
|
CVE Reference:
CVE-2006-4339
(Links to External Site)
|
Date: Sep 9 2006
|
Impact:
Modification of user information
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 0.9.7j and prior versions, 0.9.8 - 0.9.8b
|
Description:
A vulnerability was reported in OpenSSL. A remote user may be able to forge certain digital signatures.
If an RSA key with exponent 3 is used, a remote user may be able to forge a PKCS #1 v1.5 signature for that key.
Software that uses PKCS #1 v1.5 may be affected. Software that uses OpenSSL to verify X.509 certificates may also be affected.
Daniel Bleichenbacher reported the type of attack that is possible against PKCS #1 v1.5 signatures.
|
Impact:
A remote user may be able to forge signatures (and certificates).
|
Solution:
OpenBSD has issued the following patches.
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.9/common/011_openssl.patch
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.8/common/016_openssl.patch
|
Vendor URL: www.openssl.org/news/secadv_20060905.txt (Links to External Site)
|
Cause:
Authentication error
|
Underlying OS:
UNIX (OpenBSD)
|
|
Message History:
This archive entry is a follow-up to the message listed below.
|
Source Message Contents
|
Date: Sat, 9 Sep 2006 18:19:11 -0400
Subject: OpenBSD
|
SECURITY FIX: September 8, 2006 All architectures
Due to incorrect PKCS#1 v1.5 padding validation in OpenSSL, it is possible for an
attacker to construct an invalid signature which OpenSSL would accept as a valid PKCS#1
v1.5 signature. CVE-2006-4339
A source code patch exists which remedies this problem.
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.9/common/011_openssl.patch
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.8/common/016_openssl.patch
|
|
